Large organisations have problems of scale. How do you manage deploying and maintaining consistent builds across 10,000 desktop systems and 500 servers? How do you patch the latest Adobe vulnerability on all 2,000 of your road warriors' laptops? Many turn to deployment solutions. Deployment solutions can have a significant impact on the security of an environment, even aside from specific vulnerabilities such as buffer overflows that may be present in the software. This talk will consider the different risks involved when using them. Whether you are a penetration tester assessing environments where deployment solutions are in use or a system administrator looking to secure your implementation, you will find something of use here. As a case study we will be looking at Symantec's Altiris Deployment Solution, which is one widely used example of deployment software...and, hey, it does a great job! Plus you can use it to patch all your non-Microsoft vulnerabilities, so it makes you more secure...right? This talk is about when and why that might not be the case. What if you knew how to pwn an Altiris deployment server and use it to mass rootkit an entire network? What if you knew how to automatically pwn any Altiris managed laptops the instant their owners connected them to the same hotspot as you? This talk will teach you all these things. There have been some serious vulnerabilities in Altiris before...today you can expect some more.